Fedora Core 5 Update: squirrelmail-1.4.6-7.fc5 - The Community's Center for Security


The central voice for Linux and Open Source security news

Welcome!

Sign up!

EnGarde Community

Polls

How strictly do your users obey your security policies?

	To the letter.
	For the most part.
	When it suits them.
	By chance.
	Not at all.

Advisories

Community

Linux Events

Linux User Groups

Link to Us

Security Center

Book Reviews

Security Dictionary

Security Tips

SELinux

White Papers

Featured Blogs

Emily Ratliff: OS Security

DanWalsh LiveJournal

Security Bloggers Network

Latest Newsletters

Linux Advisory Watch: November 21st, 2008

Linux Security Week: November 17th, 2008

LinuxSecurity Newsletters

RSS Feeds

Get the LinuxSecurity news you want faster with RSS

Fedora Core 5 Update: squirrelmail-1.4.6-7.fc5

User Rating:

How can I rate this item?

Posted by Benjamin D. Thomas

CVE-2006-2842 Squirrelmail File Inclusion Vulnerability

---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2006-680
2006-06-07
---------------------------------------------------------------------

Product     : Fedora Core 5
Name        : squirrelmail
Version     : 1.4.6                      
Release     : 7.fc5                  
Summary     : SquirrelMail webmail client
Description :
SquirrelMail is a standards-based webmail package written in PHP4. It
includes built-in pure PHP support for the IMAP and SMTP protocols, and
all pages render in pure HTML 4.0 (with no Javascript) for maximum
compatibility across browsers.  It has very few requirements and is very
easy to configure and install. SquirrelMail has all the functionality
you would want from an email client, including strong MIME support,
address books, and folder manipulation.

---------------------------------------------------------------------
Update Information:

CVE-2006-2842 Squirrelmail File Inclusion Vulnerability

---------------------------------------------------------------------
* Wed Jun  7 2006 Warren Togami  1.4.6-7
- CVE-2006-2842 File Inclusion Vulnerability
* Mon Jun  5 2006 Warren Togami  1.4.6-6
- buildreq gettext (194169)

---------------------------------------------------------------------
This update can be downloaded from:
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/

9b33ed059ae0786448d8595b7789f0d0c8d02bf9  SRPMS/squirrelmail-1.4.6-7.fc5.src.rpm
9b33ed059ae0786448d8595b7789f0d0c8d02bf9  noarch/squirrelmail-1.4.6-7.fc5.src.rpm
e444c8eae171aa7f6d7bddf0022ad211217e9763  ppc/squirrelmail-1.4.6-7.fc5.noarch.rpm
e444c8eae171aa7f6d7bddf0022ad211217e9763  x86_64/squirrelmail-1.4.6-7.fc5.noarch.rpm
e444c8eae171aa7f6d7bddf0022ad211217e9763  i386/squirrelmail-1.4.6-7.fc5.noarch.rpm

This update can be installed with the 'yum' update program.  Use 'yum update
package-name' at the command line.  For more information, refer to 'Managing
Software with yum,' available at http://fedora.redhat.com/docs/yum/.
---------------------------------------------------------------------

_______________________________________________
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-package-announce

< Prev		Next >

Partner:

Latest Features

A Secure Nagios Server

Never Installed a Firewall on Ubuntu? Try Firestarter

Review: Hacking Exposed Linux, Third Edition

Security Features of Firefox 3.0

Review: The Book of Wireless

April 2008 Open Source Tool of the Month: sudo

Open Source Tool of March: ZoneMinder

Yesterday's Edition

Plaintext Recovery Attack Against SSH

QuickLinks: Comunity , HOWTOs , Blogs , Features , Book Reviews , Networking ,
Security Projects , Latest News , Newsletters , SELinux , Privacy , Home,
Hardening , About Us, Advertise, Legal Notice, RSS, Guardian Digital